Home

CVE-2018-12086

Description

Buffer overflow in OPC UA applications allows remote attackers to trigger a stack overflow with carefully structured requests.

Risk Information

Base Score
7.5
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
25.733

Associated Vulnerability

VulnerabilityOS Platform
Wireshark (2.6.4)Windows
Wireshark (X64) (2.6.4)Windows
Upgrade faststone_image_viewer 6.2 to latest versionWindows
Vulnerabilities CVE-2018-12086,CVE-2018-18227 are fixed in Wireshark x64 2.4.10Windows
Vulnerabilities CVE-2018-12086,CVE-2018-18225,CVE-2018-18226,CVE-2018-18227 are fixed in Wireshark x64 2.6.4Windows
Vulnerabilities CVE-2018-12086,CVE-2018-12087 are fixed in Nuget-OPCFoundation.NetStandard.Opc.Ua 1.4.353.15Windows
SUSE-SU-2018:3590-1(SUSE Linux Enterprise Desktop 12-SP3 ) libwireshark9-2.4.10-48.32.1.x86_64.rpmLinux
SUSE-SU-2018:3590-1(SUSE Linux Enterprise Desktop 12-SP3 ) libwireshark9-debuginfo-2.4.10-48.32.1.x86_64.rpmLinux
SUSE-SU-2018:3590-1(SUSE Linux Enterprise Desktop 12-SP3 ) libwiretap7-2.4.10-48.32.1.x86_64.rpmLinux
SUSE-SU-2018:3590-1(SUSE Linux Enterprise Desktop 12-SP3 ) libwiretap7-debuginfo-2.4.10-48.32.1.x86_64.rpmLinux
SUSE-SU-2018:3590-1(SUSE Linux Enterprise Desktop 12-SP3 ) libwscodecs1-2.4.10-48.32.1.x86_64.rpmLinux
SUSE-SU-2018:3590-1(SUSE Linux Enterprise Desktop 12-SP3 ) libwscodecs1-debuginfo-2.4.10-48.32.1.x86_64.rpmLinux
SUSE-SU-2018:3590-1(SUSE Linux Enterprise Desktop 12-SP3 ) libwsutil8-2.4.10-48.32.1.x86_64.rpmLinux
SUSE-SU-2018:3590-1(SUSE Linux Enterprise Desktop 12-SP3 ) libwsutil8-debuginfo-2.4.10-48.32.1.x86_64.rpmLinux
SUSE-SU-2018:3590-1(SUSE Linux Enterprise Desktop 12-SP3 ) wireshark-2.4.10-48.32.1.x86_64.rpmLinux
SUSE-SU-2018:3590-1(SUSE Linux Enterprise Desktop 12-SP3 ) wireshark-debuginfo-2.4.10-48.32.1.x86_64.rpmLinux
SUSE-SU-2018:3590-1(SUSE Linux Enterprise Desktop 12-SP3 ) wireshark-debugsource-2.4.10-48.32.1.x86_64.rpmLinux
SUSE-SU-2018:3590-1(SUSE Linux Enterprise Desktop 12-SP3 ) wireshark-gtk-2.4.10-48.32.1.x86_64.rpmLinux
SUSE-SU-2018:3590-1(SUSE Linux Enterprise Desktop 12-SP3 ) wireshark-gtk-debuginfo-2.4.10-48.32.1.x86_64.rpmLinux
SUSE-SU-2018:3590-2(SUSE Linux Enterprise Desktop 12-SP4 ) libwireshark9-2.4.10-48.32.1.x86_64.rpmLinux
SUSE-SU-2018:3590-2(SUSE Linux Enterprise Desktop 12-SP4 ) libwireshark9-debuginfo-2.4.10-48.32.1.x86_64.rpmLinux
SUSE-SU-2018:3590-2(SUSE Linux Enterprise Desktop 12-SP4 ) libwiretap7-2.4.10-48.32.1.x86_64.rpmLinux
SUSE-SU-2018:3590-2(SUSE Linux Enterprise Desktop 12-SP4 ) libwiretap7-debuginfo-2.4.10-48.32.1.x86_64.rpmLinux
SUSE-SU-2018:3590-2(SUSE Linux Enterprise Desktop 12-SP4 ) libwscodecs1-2.4.10-48.32.1.x86_64.rpmLinux
SUSE-SU-2018:3590-2(SUSE Linux Enterprise Desktop 12-SP4 ) libwscodecs1-debuginfo-2.4.10-48.32.1.x86_64.rpmLinux
SUSE-SU-2018:3590-2(SUSE Linux Enterprise Desktop 12-SP4 ) libwsutil8-2.4.10-48.32.1.x86_64.rpmLinux
SUSE-SU-2018:3590-2(SUSE Linux Enterprise Desktop 12-SP4 ) libwsutil8-debuginfo-2.4.10-48.32.1.x86_64.rpmLinux
SUSE-SU-2018:3590-2(SUSE Linux Enterprise Desktop 12-SP4 ) wireshark-2.4.10-48.32.1.x86_64.rpmLinux
SUSE-SU-2018:3590-2(SUSE Linux Enterprise Desktop 12-SP4 ) wireshark-debuginfo-2.4.10-48.32.1.x86_64.rpmLinux
SUSE-SU-2018:3590-2(SUSE Linux Enterprise Desktop 12-SP4 ) wireshark-debugsource-2.4.10-48.32.1.x86_64.rpmLinux
SUSE-SU-2018:3590-2(SUSE Linux Enterprise Desktop 12-SP4 ) wireshark-gtk-2.4.10-48.32.1.x86_64.rpmLinux
SUSE-SU-2018:3590-2(SUSE Linux Enterprise Desktop 12-SP4 ) wireshark-gtk-debuginfo-2.4.10-48.32.1.x86_64.rpmLinux
Vulnerabilities CVE-2018-12086,CVE-2018-12087 are fixed in Nuget-OPCFoundation.NetStandard.Opc.Ua for Linux 1.4.353.15Linux

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-308219Wireshark (2.6.4)
PATCH-308220Wireshark (X64) (2.6.4)
PATCH-342371FastStone Image Viewer (7.9)
PATCH-338541Wireshark (3.6.24)
PATCH-308219Wireshark (2.6.4)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234